Appranix supports protection and recovery of GCP shared VPC

Appranix supports protection and recovery of GCP shared VPC

Appranix is happy to announce the support for Shared VPC setup in Google Cloud Platform.


Google Cloud recommends having a Shared VPC setup so that instances from multiple projects can connect through the shared VPC in a private network taking advantage of the speed and security of Google's internal network architecture. For more details regarding Google's shared VPC setup, refer here.


The main catch in this setup is that the network is set up and is owned by a host project and is shared between multiple service projects under one GCP organization.


Note: Appranix establishes cloud connection per GCP project. Hence, to support the shared VPC setup recovery, it is mandatory to have the shared VPC's host project added as a separate cloud connection in Appranix.


With Shared VPC, Appranix supports multiple recovery options:


Same Region:

  1. Recover to Same Shared VPC and Same Subnet as source

  2. Recover to Same Shared VPC and DR Subnets in the same region as source

  3. Recover to DR Shared VPC and DR Subnets in the same region as source


DR/Cross Region:

  1. Recover to Same Shared VPC to a DR Subnet in DR/Cross region

  2. Recover to DR Shared VPC in DR/Cross region


The table below explains what is expected for each recovery option and the prerequisites for each use case.

 

Recovery Options

Recovery Details

Prerequisite

Same Region:

- Same shared VPC and Same Subnet as the source instance

The instances are recovered onto the same shared vpc and same subnets and hence obtain free private IP address available in the subnet.

1) Appranix Cloud Connection of the service project.

2) Appranix Cloud Connection of the host project (shared-vpc).

Same Region:

- Same shared VPC and Different Subnet in the same VPC

The instances are recovered onto the same shared vpc but in a different subnet and obtain the free private IP address available in the subnet.

1) Appranix Cloud Connection of the service project.

2) Appranix Cloud Connection of the host project (shared-vpc).

3) DR Subnets in the same vpc with available IP addresses.

Same Region:

- DR shared VPC in the same region

The instances are recovered onto the DR shared VPC in the pre-created subnets and obtain the free available IP address in the subnet.


If the DR shared VPC has the same CIDR block as source and has similar subnet settings, the IP address is retained.

1) Appranix Cloud Connection of the service project.

2) Appranix Cloud Connection of the host project (shared-vpc).

3) DR shared VPC in the same region with compatible CIDR blocks and subnets equivalent to that of the source.

DR Region/Cross-Region:

- Same Shared VPC in the DR/cross region

The instances are recovered onto the same source shared VPC in the pre-created DR subnets in the cross/DR region and obtain the free available IP address in the subnet.


DR subnets created in the same VPC should be of the similar CIDR block as the source.

1) Appranix Cloud Connection of the service project

2) Appranix Cloud Connection of the host project (shared-vpc)

3) DR subnets in the source shared VPC in the DR/cross-region with compatible CIDR block subnets equivalent to that of the source subnets.

DR Region/Cross-Region:

- DR Shared VPC in the DR/cross region

The instances are recovered on to the DR shared VPC in the pre-created subnets and obtain the free available IP address in the subnet.


If the DR shared VPC has the same CIDR block as the source and has similar subnet settings, the IP address is retained.

1) Appranix Cloud Connection of the service project

2) Appranix Cloud Connection of the host project (shared-vpc)

3) DR shared VPC in the DR/cross-region with compatible CIDR block and subnets equivalent to that of the source.



NOTE: Create New VPC is not a valid use case for a shared VPC configuration. Creating a shared VPC requires organization level permission that the Appranix service account does not acquire. You could disable seeing the create new VPC option by enabling the "Shared VPC Network Recovery" toggle button under Cloud Assembly Configuration "Recovery Options".

Configuring Shared VPC Recovery Option:

1. Select the Cloud Assembly and click on ACTIONS -> CONFIGURATION.
2. Choose Recovery Options.
3. The Shared VPC network recovery toggle option can be On/Off to choose the below two options
  1. ON: This removes the "New VPC" recovery option from the recovery configuration.
  2.  OFF: This is the default mode. This allows all the recovery options to be available during the recovery configuration.


Shared VPC recovery in the same region





Shared VPC recovery in the cross-region





Existing VPC recovery in the same region



Existing VPC recovery in the cross-region



Shared/Existing VPC Recovery Summary







    • Related Articles

    • How Appranix helps migrate your instances to a GCP Shared VPC ?

      Appranix recently rolled out support providing resilience for Application environments deployed in a GCP Shared VPC architecture. The VPC is hosted in one project and is shared between multiple service projects within the organization to get the ...

    • GCP Virtual IP / Alias IP Support to pre-created VPC

      In GCP, We have released the support for Alias IP recovery for a pre-existing VPC. If the Alias IPs have secondary IP's, then the secondary IP range's name and its range should match with the source VPC. Kindly refer to the document on GCP recovery ...

    • GCP - Zone Level Resilience Support

      Appranix provides support for the Same region and Other region recovery. In the Same region recovery, additional support for Cross zone selection is released. The resources to be recovered can be selected using the three options, Entire Assembly, ...

    • Recovery Reports

      Appranix users can now download the Recovery information as a PDF or a CSV report. Inside Cloud Assembly, under the timelines tab, select the recovery details, and from the list of recovered timelines, click on the three dots to download the PDF or ...

    • Support for Regional External IP address in GCP

      Regional External IP Address     Internet-accessible external IPv4 addresses that are usable by regional resources. Each region has its own set of external IP addresses for zonal or regional resources therein. Supported by Appranix     Appranix has ...